bind/bin/tests/system/staticstub/ns3/sign.sh

#!/bin/sh 
#
# Copyright (C) Internet Systems Consortium, Inc. ("ISC")
#
# This Source Code Form is subject to the terms of the Mozilla Public
# License, v. 2.0. If a copy of the MPL was not distributed with this
# file, You can obtain one at http://mozilla.org/MPL/2.0/.
#
# See the COPYRIGHT file distributed with this work for additional
# information regarding copyright ownership.

. ../../conf.sh

zone=example.
infile=example.db.in
zonefile=example.db

(cd ../ns4 && $SHELL -e sign.sh )

cp ../ns4/dsset-sub.example$TP .

keyname1=`$KEYGEN -q -a RSASHA256 -b 1024 -n zone $zone`
keyname2=`$KEYGEN -q -a RSASHA256 -b 2048 -f KSK -n zone $zone`
cat $infile $keyname1.key $keyname2.key > $zonefile

$SIGNER -g -o $zone $zonefile > /dev/null

# Configure the resolving server with a trusted key.
keyfile_to_static_ds $keyname2 > trusted.conf

zone=undelegated
infile=undelegated.db.in
zonefile=undelegated.db
keyname1=`$KEYGEN -q -a RSASHA256 -b 1024 -n zone $zone`
keyname2=`$KEYGEN -q -a RSASHA256 -b 2048 -f KSK -n zone $zone`
cat $infile $keyname1.key $keyname2.key > $zonefile

$SIGNER -g -o $zone $zonefile > /dev/null

keyfile_to_static_ds $keyname2 >> trusted.conf
cp trusted.conf ../ns2/trusted.conf
2947. [func] Add new zone type "static-stub". It's like a stub zone, but the nameserver names and/or their IP addresses are statically configured. [RT #21474] (for 9.8.0) 2010-12-16 09:51:30 +00:00			`#!/bin/sh`
			`#`
Update license headers to not include years in copyright in all applicable files 2018-02-23 09:53:12 +01:00			`# Copyright (C) Internet Systems Consortium, Inc. ("ISC")`
reverse bad copyright update 2012-06-29 11:39:47 +10:00			`#`
4401. [misc] Change LICENSE to MPL 2.0. 2016-06-27 14:56:38 +10:00			`# This Source Code Form is subject to the terms of the Mozilla Public`
			`# License, v. 2.0. If a copy of the MPL was not distributed with this`
			`# file, You can obtain one at http://mozilla.org/MPL/2.0/.`
Update license headers to not include years in copyright in all applicable files 2018-02-23 09:53:12 +01:00			`#`
			`# See the COPYRIGHT file distributed with this work for additional`
			`# information regarding copyright ownership.`
2947. [func] Add new zone type "static-stub". It's like a stub zone, but the nameserver names and/or their IP addresses are statically configured. [RT #21474] (for 9.8.0) 2010-12-16 09:51:30 +00:00
Drop $SYSTEMTESTTOP from bin/tests/system/ The $SYSTEMTESTTOP shell variable if often set to .. in various shell scripts inside bin/tests/system/, but most of the time it is only used one line later, while sourcing conf.sh. This hardly improves code readability. $SYSTEMTESTTOP is also used for the purpose of referencing scripts/files living in bin/tests/system/, but given that the variable is always set to a short, relative path, we can drop it and replace all of its occurrences with the relative path without adversely affecting code readability. 2020-07-21 12:12:59 +02:00			`. ../../conf.sh`
2947. [func] Add new zone type "static-stub". It's like a stub zone, but the nameserver names and/or their IP addresses are statically configured. [RT #21474] (for 9.8.0) 2010-12-16 09:51:30 +00:00
			`zone=example.`
.zone -> .db 2010-12-17 00:57:39 +00:00			`infile=example.db.in`
			`zonefile=example.db`
2947. [func] Add new zone type "static-stub". It's like a stub zone, but the nameserver names and/or their IP addresses are statically configured. [RT #21474] (for 9.8.0) 2010-12-16 09:51:30 +00:00
[master] use posix-compatible shell in system tests 3839. [test] Use only posix-compatible shell in system tests. [RT #35625] 2014-05-06 22:06:04 -07:00			`(cd ../ns4 && $SHELL -e sign.sh )`
2947. [func] Add new zone type "static-stub". It's like a stub zone, but the nameserver names and/or their IP addresses are statically configured. [RT #21474] (for 9.8.0) 2010-12-16 09:51:30 +00:00
4487. [test] Make system tests work on Windows. [RT #42931] 2016-10-19 17:18:42 +02:00			`cp ../ns4/dsset-sub.example$TP .`
2947. [func] Add new zone type "static-stub". It's like a stub zone, but the nameserver names and/or their IP addresses are statically configured. [RT #21474] (for 9.8.0) 2010-12-16 09:51:30 +00:00
Remove genrandom command and all usage of specific random files throughout the system test suite 2018-04-24 16:01:23 +02:00			keyname1=`$KEYGEN -q -a RSASHA256 -b 1024 -n zone $zone`
			keyname2=`$KEYGEN -q -a RSASHA256 -b 2048 -f KSK -n zone $zone`
2947. [func] Add new zone type "static-stub". It's like a stub zone, but the nameserver names and/or their IP addresses are statically configured. [RT #21474] (for 9.8.0) 2010-12-16 09:51:30 +00:00			`cat $infile $keyname1.key $keyname2.key > $zonefile`

Remove 2>&1 from the dnssec-signzone invocation in tests 2019-07-20 18:06:16 -04:00			`$SIGNER -g -o $zone $zonefile > /dev/null`
2947. [func] Add new zone type "static-stub". It's like a stub zone, but the nameserver names and/or their IP addresses are statically configured. [RT #21474] (for 9.8.0) 2010-12-16 09:51:30 +00:00
			`# Configure the resolving server with a trusted key.`
use DS style trust anchors in all system tests this adds functions in conf.sh.common to create DS-style trust anchor files. those functions are then used to create nearly all of the trust anchors in the system tests. there are a few exceptions: - some tests in dnssec and mkeys rely on detection of unsupported algorithms, which only works with key-style trust anchors, so those are used for those tests in particular. - the mirror test had a problem with the use of a CSK without a SEP bit, which still needs addressing in the future, some of these tests should be changed back to using traditional trust anchors, so that both types will be exercised going forward. 2019-09-18 19:41:40 -07:00			`keyfile_to_static_ds $keyname2 > trusted.conf`
4077. [test] Add static-stub regression test for DS NXDOMAIN return making the static stub disappear. [RT #38564] 2015-02-27 12:46:45 +11:00
			`zone=undelegated`
			`infile=undelegated.db.in`
			`zonefile=undelegated.db`
Remove genrandom command and all usage of specific random files throughout the system test suite 2018-04-24 16:01:23 +02:00			keyname1=`$KEYGEN -q -a RSASHA256 -b 1024 -n zone $zone`
			keyname2=`$KEYGEN -q -a RSASHA256 -b 2048 -f KSK -n zone $zone`
4077. [test] Add static-stub regression test for DS NXDOMAIN return making the static stub disappear. [RT #38564] 2015-02-27 12:46:45 +11:00			`cat $infile $keyname1.key $keyname2.key > $zonefile`

Remove 2>&1 from the dnssec-signzone invocation in tests 2019-07-20 18:06:16 -04:00			`$SIGNER -g -o $zone $zonefile > /dev/null`
4077. [test] Add static-stub regression test for DS NXDOMAIN return making the static stub disappear. [RT #38564] 2015-02-27 12:46:45 +11:00
use DS style trust anchors in all system tests this adds functions in conf.sh.common to create DS-style trust anchor files. those functions are then used to create nearly all of the trust anchors in the system tests. there are a few exceptions: - some tests in dnssec and mkeys rely on detection of unsupported algorithms, which only works with key-style trust anchors, so those are used for those tests in particular. - the mirror test had a problem with the use of a CSK without a SEP bit, which still needs addressing in the future, some of these tests should be changed back to using traditional trust anchors, so that both types will be exercised going forward. 2019-09-18 19:41:40 -07:00			`keyfile_to_static_ds $keyname2 >> trusted.conf`
2947. [func] Add new zone type "static-stub". It's like a stub zone, but the nameserver names and/or their IP addresses are statically configured. [RT #21474] (for 9.8.0) 2010-12-16 09:51:30 +00:00			`cp trusted.conf ../ns2/trusted.conf`